Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2023-25588
HistoryFeb 15, 2023 - 12:00 a.m.

CVE-2023-25588

2023-02-1500:00:00
ubuntu.com
ubuntu.com
40
binutils
local denial of service
uninitialized field

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

EPSS

0

Percentile

10.3%

JSON

A flaw was found in Binutils. The field the_bfd of asymbolstruct is
uninitialized in the bfd_mach_o_get_synthetic_symtab function, which may
lead to an application crash and local denial of service.

Notes

Author Note
seth-arnold binutils isn’t safe for untrusted inputs.
OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchbinutils< 2.30-21ubuntu1~18.04.9UNKNOWN
ubuntu20.04noarchbinutils< 2.34-6ubuntu1.5UNKNOWN
ubuntu22.04noarchbinutils< 2.38-4ubuntu2.2UNKNOWN
ubuntu22.10noarchbinutils< 2.39-3ubuntu1.2UNKNOWN
ubuntu14.04noarchbinutils< 2.24-5ubuntu14.2+esm1UNKNOWN
ubuntu16.04noarchbinutils< 2.26.1-1ubuntu1~16.04.8+esm6UNKNOWN

Related

prion 1
nessus 30
redhatcve 1
osv 2
alpinelinux 1
cvelist 1
openvas 20
cve 1
debiancve 1
veracode 1
nvd 1
ubuntucve 1
ubuntu 1
cloudfoundry 1
photon 6
hp 1
ics 1
prion
prion
Denial of service
2023-09-14 21:15:00
nessus
nessus
EulerOS Virtualization 3.0.6.0 : binutils (EulerOS-SA-2023-3420)
2024-01-16 00:00:00
EulerOS Virtualization 3.0.6.6 : binutils (EulerOS-SA-2023-3392)
2024-01-16 00:00:00
EulerOS 2.0 SP8 : binutils (EulerOS-SA-2023-3114)
2024-01-16 00:00:00
redhatcve
redhatcve
CVE-2023-25588
2023-02-07 19:27:42
osv
osv
CVE-2023-25588
2023-09-14 21:15:10
binutils vulnerabilities
2023-05-24 08:57:00
alpinelinux
alpinelinux
CVE-2023-25588
2023-09-14 21:15:10
cvelist
cvelist
CVE-2023-25588 Field `the_bfd` of `asymbol` is uninitialized in function `bfd_mach_o_get_synthetic_symtab`
2023-09-14 20:47:16
openvas
openvas
Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2023-3392)
2023-12-14 00:00:00
Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2023-3420)
2023-12-15 00:00:00
Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2023-3114)
2023-11-09 00:00:00
cve
cve
CVE-2023-25588
2023-09-14 21:15:10
debiancve
debiancve
CVE-2023-25588
2023-09-14 21:15:10
veracode
veracode
Denial Of Service (DoS)
2023-10-09 13:17:51
nvd
nvd
CVE-2023-25588
2023-09-14 21:15:10
ubuntucve
ubuntucve
CVE-2022-47696
2023-08-22 00:00:00
ubuntu
ubuntu
GNU binutils vulnerabilities
2023-05-24 00:00:00
cloudfoundry
cloudfoundry
USN-6101-1: GNU binutils vulnerabilities | Cloud Foundry
2023-06-30 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2023-5.0-0060
2023-07-29 00:00:00
Important Photon OS Security Update - PHSA-2023-3.0-0604
2023-06-27 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0440
2023-07-29 00:00:00
hp
hp
HP ThinPro 8.0 SP 7 Security Updates
2024-01-26 00:00:00
ics
ics
Siemens SCALANCE XCM-/XRM-300
2024-02-15 12:00:00

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

EPSS

0

Percentile

10.3%

JSON
Related for UB:CVE-2023-25588
prion1nessus30redhatcve1osv2alpinelinux1cvelist1openvas20cve1debiancve1veracode1nvd1ubuntucve1ubuntu1cloudfoundry1photon6hp1ics1